exploits , vulnerabilities , articles , XOOPS register.php Cross-Site Scripting Vulnerability

Title	XOOPS register.php Cross-Site Scripting Vulnerability
Published	2007-12-12-12:00AM
Updated	2007-12-13-04:52PM
Class	Input Validation Error
CVE
Remote	Yes
Local	No
Credit	Omer Singer is credited with the discovery of this vulnerability.
Vulnerable	Xoops Xoops 2.2.5
Not Vulnerable
Code	To exploit this issue, an attacker must entice an unsuspecting victim into following a malicious URI.The following proof-of-concept URI is available: /data/vulnerabilities/exploits/26835.html
TXT

Vulnerabilities - newest 10 RSS | More

• 2009-12-11 Symantec Veritas VRTSweb Incoming Data Remote Code Execution Vulnerability
• 2009-12-11 HP OpenView Network Node Manager Perl CGI Executables Remote Code Execution Vulnerability
• 2009-12-11 HP OpenView Network Node Manager Unspecified Stack Buffer Overflow Vulnerability
• 2009-12-11 Joomla! JS Jobs Component Multiple SQL Injection Vulnerabilities
• 2009-12-11 RT Session Fixation Vulnerability
• 2009-12-11 Multiple HP LaserJet Printers Unauthorized Access and Denial of Service Vulnerability
• 2009-12-11 Sun Ray Server Authentication Manager Remote Code Execution Vulnerability
• 2009-12-10 GNU Coreutils Insecure Temporary File Creation Vulnerability
• 2009-12-10 WebKit SVG Animation Elements User After Free Remote Code Execution Vulnerability
• 2009-12-10 Moodle Multiple Vulnerabilities

• Vulnerabilities
• Exploits
• News
• Articles

Copyright 2007, SecurityDot
Sat, 12 Dec 2009 04:42:03 +0000